I'm glad to announce we have released OWASP Pen Test Checklist ver 1.17 in Spanish.Thanks to Pedro, Raul and Rogelio for it's great effort to have this document translated and to Christian by helping out with technical edition. You can download this version [http://www.owasp.org/docroot/owasp/misc/testing_spanish.pdf PDF] or [http://www.owasp.org/docroot/owasp/misc/testing_spanish.doc Word]

I'm glad to announce we have released OWASP Pen Test Checklist ver 1.17 in Spanish.Thanks to Pedro, Raul and Rogelio for it's great effort to have this document translated and to Christian by helping out with technical edition. You can download this version [http://www.owasp.org/docroot/owasp/misc/testing_spanish.pdf PDF] or [http://www.owasp.org/docroot/owasp/misc/testing_spanish.doc Word]

The OWASP Testing Guide includes a "best practice" penetration testing framework which users can implement in their own organizations and a "low level" penetration testing guide that describes techniques for testing most common web application and web service security issues.

OWASP Testing Guide v3 is a 349 page book; we have split the set of active tests in 9 sub-categories for a total of 66 controls to test during the Web Application Testing activity.

Welcome to the new OWASP Testing Guide

OWASP Testing Guide v3: let's start!

26th April 2008: Thanks to the SoC 08 results the planning stage has started for version 3.0 of the Testing Guide. If you have knowledge and experience in application testing, and can spare a few hours a week, please do get in touch. Alternatively you can join the OWASP Testing mailing list. The project is lead by Matteo Meucci.

II phase: start writing
After creating the new Index, we will assign each paragraph to the volunteers, start writing!
Each author will write the article on the wiki and reviewed by the OWASP Testing guide team.
Deadline: 30th June 2008

III phase: start reviewing
Create the reviewer team. Assign each new paragraph to the reviewer.
Deadline: 20th July 2008

IV phase: Finalize the Guide
Create the doc and pdf format of the v3.
Deadline: 15th August 2008

Roadmap

Background and Motivation

History Behind Project
The Testing guide originated in 2003 with Dan Cuthbert as one of the original editors. It was handed over to Eoin Keary in 2005 and transformed into a wiki.
Being a wiki it is easier for people to contribute and should make updating much easier.
Matteo Meucci has decided to take on the Testing guide and update it creating the OWASP Testing Guide v2.

Now it's time to create a new Guide, improving each chapter and adding the new testing methodologies.

Overview

This projects goal is to create a "best practices" penetration testing framework which users can implement in their own organizations and a "low level" penetration testing guide that describes how to find certain issues.

Volunteers needed

Positions for v3 of the guide are now open!

If you have knowledge and experience in application testing, and can spare a few hours a week, please do get in touch

Testing Project Phase Three Guide(draft)

This is the working draft of the OWASP Testing Guide v3. Please login to make changes as you see fit. Changes will be vetted by the OWASP Testing Project team.

So what we need now (until 10th of February) is for you to review it. Please let us know any mistakes made, and if you feel that there is something missing, please help yourself and edit the relevant WIKI page.

Old Testing Guide Download

A copy of the old guide (The OWASP Testing Guide v1.1) is available [here], it shall also be available in HTML format on the forthcoming OWASP Live CD.
A PDF copy shall also be available to download.

OWASP Pen Test Checklist in Italian
Sun May 22 10:56:39 EDT 2005
I'm glad to announce we have released OWASP Pen Test Checklist in Italian. Thanks to the Italian Chapter, Massimiliano and Matteo for it's great effort to have this document translated. You can download this version in PDF or Word

Checklist ver 1.17 in Spanish
Mon Apr 04 15:37:24 EDT 2005
I'm glad to announce we have released OWASP Pen Test Checklist ver 1.17 in Spanish.Thanks to Pedro, Raul and Rogelio for it's great effort to have this document translated and to Christian by helping out with technical edition. You can download this version PDF or Word

Feedback and Participation

We hope you find the information in the OWASP Testing project useful. Please contribute back to the project by sending your comments, questions, and suggestions to the OWASP Testing mailing list. Thanks!

To join the OWASP Testing mailing list or view the archives, please visit the subscription page.